Snapshot of my #ngnix logs:
Not surprising that bots and scrapers make up 90% of my hits and nearly 95% of my data used, nor is it surprising to see Windows is the most-used OS.
But what did surprise me where some of the Windows versions. Sure, #WinXP still has its purpose for legacy software/hardware combos, but who's using #WindowsCE?!
Also, you can't see it in the screenshot, but I also have hits from devices running Android Kitkat and Jellybean. With the IOS side going back to IOS6.
Most OSes these days don't allow incoming connections at random and no reasonable software should expose i.e. servers on the network.
Even #WebDevelopers wanting to have a #httpd or #ngnix on the go will bind that to the loopbackinterface.
The few applications that don't do that have no reason to exist and are inherently #ITsec issues.
Most corporations use VPNs to fullfill ITsec requirements ranging from #PCIDSS to #HIPAA and from #GDPR to #BDSG as well as protect against #CorporateEspionage and #Hacking by literally only allowing #eMail access through the corporate VPN or #LAN.
@drscriptt Naive question: WHEN does the average #Internet #user ever open up a webpage with an #IP address instead of a #domain or even #FQDN?
The Idea if !SSL / #TLD for #IPaddresses makes me feel like Jeff Goldblum!
Alternatively, you can put #writefreely AND another webservice for your images behind #Ngnix. Lets say `wf.yourdomain` and `images.yourdomain`
DirtSWS is a little #single #binary #webserver that does nothing but host #static #html and files, with a simple single-file remote upload capability. Here's a sample site: https://static.awadwatt.com/index.html
The absolute POWER TRIP that is getting your services up and public with DynDNS, mTLS, ACME certs, and subdomain-based routing.
#OPNsense #Ngnix #LetsEncrypt #HomeLab #SelfHosting #SelfHosted #Networking
The other day I needed to find a way to show a completely different site to users based on their IP addresses and/or cookies in their browser:
We are replacing a static site with a new WordPress blog, and we needed our staff to be able to access the new blog to seed it with blog posts, while still showing the old static site to ‘ordinary visitors’ until the new site was fully ready.
I wrote a blog about how I accomplished this here:
https://blog.thms.uk/2024/07/smart-routing-with-nginx?utm_source=mastodon
This post shows how you can use nginx to set a different website root based on a combination of the visitor's IP address and cookies. You can use this to allow staff and contractors to test a new site, whilst regular visitors still see the old site.
Adam
Kevin Karhan 
Harald Leithner
Third spruce tree on the left
ottoto
"Musty Bits" McGee
Michael